Tamper-proof secure storage with recovery
Abstract
Systems and methods for tamper-proof detection triggering of automatic lockdown using a recoverable encryption mechanism issued from a secure escrow service. In an illustrative, non-limiting embodiment, an Information Handling System (IHS) may include: a processor; a secure storage device coupled to the processor, wherein the secure storage device comprises a container encrypted with a derived container key; and a memory coupled to the processor, the memory including program instructions stored thereon that, upon execution, cause the IHS to: receive a digital certificate from a remote server, wherein the digital certificate includes a public key and, in response to a detection of a tampering event, encrypt the derived container key using the public key.
Claims
exact text as granted — not AI-modifiedThe invention claimed is:
1. An Information Handling System (IHS), comprising:
a processor;
a secure storage device coupled to the processor, wherein the secure storage device comprises a container encrypted with a derived container key; and
a memory coupled to the processor, the memory including program instructions stored thereon that, upon execution, cause the IHS to:
receive a digital certificate from a remote server, wherein the digital certificate includes a public key; and
in response to a detection of a tampering event with regard to the IHS, encrypt the derived container key using the public key received from the remote server.
2. The IHS of claim 1 , further comprising a sensor coupled to the processor, the sensor configured to detect the tampering event under control of a Basic Input/Output System (BIOS) and independently of the operation of any Operating System (OS) in execution by the IHS.
3. The IHS of claim 1 , wherein the sensor comprises one or more of: a current sensor, a voltage sensor, a movement sensor, a pressure sensor, a microphone, a temperature sensor, or an optical sensor.
4. The IHS of claim 1 , wherein the sensor comprises a biometric sensor.
5. The IHS of claim 1 , wherein the tampering event is triggered by another remote server distinct from the IHS.
6. The IHS of claim 1 , wherein the tampering event is triggered in response to the other remote server receiving IHS usage data and identifying a pattern indicative of tampering in the IHS usage data.
7. The IHS of claim 6 , wherein the IHS usage data includes mechanical shock events.
8. The IHS of claim 6 , wherein the IHS usage data indicates a geo-fence violation.
9. The IHS of claim 1 , wherein the program instructions, upon execution, cause the IHS to:
receive a tamper policy setting from a user of the IHS;
determine that a type of the tampering event matches a selected type included in the tamper policy setting; and
take an action corresponding to the selected type.
10. The IHS of claim 1 , wherein the action includes electronically notifying the user or an administrator of the tampering event.
11. The IHS of claim 1 , wherein the program instructions, upon execution, cause the IHS to:
establish a secure communication channel with the remote server;
transmit the public key-encrypted derived container key to the remote server; and
receive a decrypted derived container key from the remote server in response to the remote server decrypting the public key-encrypted derived container key using a private key associated with the digital certificate.
12. The IHS of claim 11 , wherein the program instructions, upon execution, cause the IHS to:
restore access to the secure storage by replacing the public key-encrypted derived container key with the decrypted derived container key.
13. A hardware memory device having program instructions stored thereon that, upon execution by an Information Handling System (IHS), cause the IHS to:
receive a digital certificate from a remote server, wherein the digital certificate includes a public key; and
in response to a detection of a tampering event with regard to the IHS, encrypt a derived container key using the public key received from the remote server, wherein the derived container key is used to encrypt a container of a secure storage device.
14. The hardware memory device of claim 13 , wherein the program instructions, upon execution by an Information Handling System (IHS), cause the IHS to:
detect the tampering event using a sensor comprises one or more of: a current sensors, a voltage sensor, a movement sensor, a pressure sensor, a microphone, a temperature sensor, an optical sensor, or a biometric sensor.
15. The hardware memory device of claim 13 , wherein the tampering event is triggered by another remote server distinct from the IHS.
16. The hardware memory device of claim 13 , wherein the tampering event is triggered in response to the other remote server receiving IHS usage data and identifying a pattern indicative of tampering in the IHS usage data.
17. The hardware memory device of claim 13 , wherein the program instructions, upon execution, cause the IHS to:
establish a secure communication channel with the remote server;
transmit the public key-encrypted derived container key to the remote server;
receive a decrypted derived container key from the remote server in response to the remote server decrypting the public key-encrypted derived container key using a private key associated with the digital certificate; and
restore access to the secure storage by replacing the public key-encrypted derived container key with the decrypted derived container key.
18. A method, comprising:
receiving a digital certificate from a remote server, wherein the digital certificate includes a public key; and
in response to a detection of a tampering event with regard to the IHS, encrypting a derived container key using the public key received from the remote server, wherein the derived container key is used to encrypt a container of a secure storage device.
19. The method of claim 18 , further comprising:
detecting the tampering event using a sensor comprises one or more of: a current sensors, a voltage sensor, a movement sensor, a pressure sensor, a microphone, a temperature sensor, an optical sensor, or a biometric sensor.
20. The method of claim 18 , further comprising:
establishing a secure communication channel with the remote server;
transmitting the public key-encrypted derived container key to the remote server;
receiving a decrypted derived container key from the remote server in response to the remote server decrypting the public key-encrypted derived container key using a private key associated with the digital certificate; and
restoring access to the secure storage by replacing the public key-encrypted derived container key with the decrypted derived container key.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.